CVE-2023-50914 | GOG Galaxy up to 2.0.67.2/2.0.71.2 Inter-Process Communication GalaxyClient.exe FixDirectoryPrivileges permission

Inserito da Angelo Barbosa | Apr 30, 2024 | CVE

A vulnerability classified as critical was found in GOG Galaxy up to 2.0.67.2/2.0.71.2. This vulnerability affects unknown code of the file GalaxyClient.exe of the component Inter-Process Communication. The manipulation of the argument FixDirectoryPrivileges leads to permission issues.

This vulnerability was named CVE-2023-50914. An attack has to be approached locally. There is no exploit available.

CVE-2023-50914 | GOG Galaxy up to 2.0.67.2/2.0.71.2 Inter-Process Communication GalaxyClient.exe FixDirectoryPrivileges permission

Post correlati

CVE-2024-24764 | October CMS up to 3.5.14 october Schema redirect (GHSA-v2vf-jv88-3fp5)

CVE-2024-6005 | ZKTeco ZKBio CVSecurity V5000 4.1.0 Department Section Department Name cross site scripting

CVE-2024-36408 | SalesAgility SuiteCRM up to 7.14.3/8.6.0 Alerts Controller sql injection (GHSA-2g8f-gjrr-x5cg)

CVE-2024-34767 | HasThemes ShopLentor Plugin up to 2.8.7 on WordPress cross site scripting